Daily Cyber Brief
Cyber jihad by ISIS is a growing threat, new Android malware was downloaded over 3M times on Google Play, and the new Retbleed attack affects AMD and Intel CPUs...
Cybersecurity
At CyberWeek in Tel Aviv, Israel, Gaby Portnoy, the new director general of the country’s Cyber Directorate announced the Cyber-Dome project — a new big data, AI, overall approach to proactive cyberdefense. This project is expected to be a collaborative effort between…
The region is facing a greater risk of attacks from home-grown extremists who are inspired by “cyber jihad” linked to the Islamic State in Iraq and Syria (ISIS), said Singapore’s Internal Security Department (ISD) on Wednesday (13 July). In its “Singapore Terrorism Threat…
Microsoft has published the exploit code for a vulnerability in macOS that could help an attacker bypass sandbox restrictions and run code on the system. The company released the technical details for the security issue, which is currently identified as CVE-2022-26706…
Honda said it is addressing a spate of recently-discovered vulnerabilities in its newly designed models after researchers found bugs affecting the key fob systems in its vehicles dating back to 2012. Earlier this year, Honda was forced to address CVE-2022-27254 – a replay…
Security researchers have uncovered yet another vulnerability affecting numerous older AMD and Intel microprocessors that could bypass current defenses and result in Spectre-based speculative-execution attacks. Dubbed Retbleed by ETH Zurich researchers Johannes…
A new Android malware family on the Google Play Store that secretly subscribes users to premium services was downloaded over 3,000,000 times. The malware, named 'Autolycos,' was discovered by Evina's security researcher Maxime Ingrao to be in at least eight Android…
Japanese video game giant Bandai Namco confirmed on Wednesday that it experienced a wide-ranging cyberattack that may have exposed customer information. On Monday, the AlphV ransomware group added Bandai Namco to its list of victims, but the company…
Consumer electronics maker Lenovo on Tuesday rolled out fixes to contain three security flaws in its UEFI firmware affecting over 70 product models. "The vulnerabilities can be exploited to achieve arbitrary code execution in the early phases of the platform boot…
Uniswap, a popular decentralized cryptocurrency exchange, lost close to $8 million worth of Ethereum in a sophisticated phishing attack yesterday. While the protocol hasn't been compromised by exploiting a vulnerability as initially suspected, the cyberattack has…
Microsoft on Tuesday disclosed that a large-scale phishing campaign targeted over 10,000 organizations since September 2021 by hijacking Office 365's authentication process even on accounts secured with multi-factor authentication (MFA). "The attackers then used the…